Quokka Recognized in Gartner® Research on How to Avoid Common Cybersecurity Pitfalls in Mobile App Development

Gartner’s “How to Avoid Common Cybersecurity Pitfalls in Mobile App Development” mentions Quokka as a vendor offering mobile application security testing (AST).

By

We’re proud to share that Quokka was mentioned as a vendor offering mobile application security testing (AST) in the Gartner® report titled “How to Avoid Common Cybersecurity Pitfalls in Mobile App Development,” published July 16, 2025 by Dionisio Zumerle.

We believe that this recognition underscores Quokka’s continued commitment to securing the mobile application ecosystem through advanced analysis, testing, and risk intelligence.

Why Secure Mobile App Development Matters

According to Gartner, “Through 2030, mobile application security failures will be the biggest mobile threat for enterprises.” As mobile apps become core to operations, customer engagement, and transactions, security leaders face new and evolving risks that traditional web-focused security tools can’t adequately address.

According to the report, “This research highlights a three-step approach cybersecurity leaders should keep in mind to embed key cybersecurity principles in the planning, development and testing of their mobile applications.”

"Creating a Secure Mobile Application" diagram from Gartner

Gartner identifies Quokka as one of the vendors providing mobile application security testing (AST).

Our approach to mobile app security testing

Quokka offers an advanced mobile AST solution, Q-mast, that combines:

  • Static, dynamic, and interactive analysis (SAST, DAST, IAST) tailored for mobile environments
  • Real-time threat intelligence and behavioral analysis to detect malicious behavior and privacy violations
  • Software Bill of Materials (SBOM) generation and library-level vulnerability scoring for supply chain visibility

Key benefits of Q-mast include that ability to:

  • Test apps the way users actually use them – Dynamic testing simulates real user behavior to catch risks that code scanning misses
  • Work with any app, even without source code – Test third-party components, vendor apps, and compiled binaries without needing developer access
  • Get compliance reports that auditors accept – Ready-made documentation for OWASP, GDPR, and NIAP that maps directly to regulatory requirements
  • Integrate without breaking your workflow – CI/CD integration that delivers security findings in your existing development process

To learn more about Q-mast, request a demo and learn how Quokka fits within your unique environment. Visit Gartner’s website to access the full “How to Avoid Common Cybersecurity Pitfalls in Mobile App Development” research.


 

Gartner, “How to Avoid Common Cybersecurity Pitfalls in Mobile App Development.” By Dionisio Zumerle, 16 July 2025.

GARTNER is a registered trademark and service mark of Gartner, Inc. and/or its affiliates in the U.S. and internationally and is used herein with permission. All rights reserved.

Gartner does not endorse any vendor, product or service depicted in its research publications, and does not advise technology users to select only those vendors with the highest ratings or other designation. Gartner research publications consist of the opinions of Gartner’s research organization and should not be construed as statements of fact. Gartner disclaims all warranties, expressed or implied, with respect to this research, including any warranties of merchantability or fitness for a particular purpose.